Unrated severityNVD Advisory· Published Dec 30, 2019· Updated Aug 5, 2024
CVE-2019-20093
CVE-2019-20093
Description
The PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.6 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file, because of ImageExtractor.cpp.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6- PoDoFo/PoDoFodescription
- Range: <=0.9.6
- osv-coords4 versionspkg:rpm/opensuse/podofo&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/podofo&distro=openSUSE%20Tumbleweedpkg:rpm/suse/podofo&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/podofo&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5
< 0.9.6-150300.3.3.1+ 3 more
- (no CPE)range: < 0.9.6-150300.3.3.1
- (no CPE)range: < 0.10.3-2.1
- (no CPE)range: < 0.9.2-3.12.1
- (no CPE)range: < 0.9.2-3.12.1
Patches
Vulnerability mechanics
References
3- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CTB2J5XWOEGAJYR2N66GAECUIKDG6O2S/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XHFOCBZCF3GX7A6FWE3JM7P37TQWGINJ/mitrevendor-advisoryx_refsource_FEDORA
- sourceforge.net/p/podofo/tickets/75/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.